sector/NginxModSecurity

Project ID: 29267

Description

This repository provides out of the box ModSecurity support for Nginx including OWASP-CRS3.
Simple follow the instructions below and enjoy.
I'll try to hold this repository up to date.

Installation Instructions

dnf install nginx-mod-modsecurity
dnf install nginx-mod-modsecurity-crs

I explicitly excluded nginx reloads so you will have to do it manually.
edit /etc/nginx/modsecurity.d/owasp-modsecurity-crs/crs-setup.conf
for example simple comment SecDefaultAction "phase:1,log,auditlog,pass"
and SecDefaultAction "phase:2,log,auditlog,pass"
and uncomment SecDefaultAction "phase:1,log,auditlog,deny,status:403"
and SecDefaultAction "phase:2,log,auditlog,deny,status:403"

Active Releases

The following unofficial repositories are provided as-is by owner of this project. Contact the owner directly for bugs or issues (IE: not bugzilla).

Release Architectures Repo Download
Epel for CentOS 8 x86_64 (0)* Epel for CentOS 8 (4 downloads)
Fedora 31 x86_64 (0)* Fedora 31 (6 downloads)

* Total number of packages downloaded in the last seven days.